Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people, just like you, are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
Solved

Irregular email relay issue

Posted on 2011-09-07
15
1,471 Views
Last Modified: 2012-05-12
Hi All,

We are a single domain network with multiple email domains associated to it. One of our email domains is having an issue where incoming emails are getting a bounceback "550 5.7.1 unable to relay for email@domain.com" where email@domain.com could be one of three distribution groups with between 4 and 7 users within. These seem to be the only 3 email addresses that are affected.

However, in addition, it doesn't happen for every email going to these addresses, it is roughly happening to a quarter-a third of all emails going to those addresses.

We use a Mimecast email service, where i can see all of the bouncebacks that have been sent, and the IP address for this service has been added to our Exchange relay list. The relay properties of our SMTP protocol on our Exchange server are set to "only allow the list below" (with the mimecast IP address in the list, plus a couple of our web servers). We also have "allow all computers which successfully authenticate to relay, regardless of the list above" ticked.

Any help greatly appreciated!
Kind Regards,
Dave
0
Comment
Question by:jjFOX04
  • 9
  • 6
15 Comments
 
LVL 9

Expert Comment

by:davealford
ID: 36494376
Can you see the message headers of a bounced message - it should contain information showing why it's bounced and what actually bounced it?
0
 

Author Comment

by:jjFOX04
ID: 36494522
unfortunately i cannot see the actual bounced email, I can only see the email that came into Mimecast in the first place. I've only got an option to view the "bounce report" in Mimecast to see the bounce code 550 5.7.1. Unable to Relay for....

I was hoping to check our SMTP logs on the exchange server, but they have been switched off, so unsure whether the email actually made it from Mimecast to our exchange server before being bounced.
0
 
LVL 9

Expert Comment

by:davealford
ID: 36494631
Have you asked Mimecast to check? It could just be they're using someing like a dynamic IP address blocklist .....
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 

Author Comment

by:jjFOX04
ID: 36494651
I have, still waiting for a reply from them - there response time has never been particularly quick for us, which is why i came on here.

It's looking increasingly like a Mimecast issue, but wanted to check in case there was something obvious that I'd missed.

Happy to close this question though if you're confident it's something Mimecast would need to solve, rather than on our Exchange server?
0
 
LVL 9

Expert Comment

by:davealford
ID: 36494682
unfortunatly, without the bounced message header it's difficult to tell.
What you could try doing is connecting to the receiving SMTP server at Mimecast via telnet on port 25 FROM a dynamic ADSL connection - if you get a denied message then they probably block dynamic/ADSL IP addresses. If you have access to a DSL connection with a 'proper' static IP you could then try the same thing and, if it then works, you could be pretty confident they're using blocklists (and, just about everyone does nowadays)
0
 

Author Comment

by:jjFOX04
ID: 36501014
@davealford

Sorry for not getting back to you sooner. I have connected to the server at Mimecast via telnet without a problem at all, so the problem is still illusive!

I have had a reply back from Mimecast as well, saying:

As per the previous email that I sent you emails that 'Hard bounced' are bounced by the recipient server. It is a server condition causing the non acceptance of the email.

In the case of the email screenshot attached, Mimecast attempted to deliver the email to your server - **IP Address** but the server refused to accept the message and issued the '550 5.7.1 Unable to relay for email@domain.com' error.

Yes, some emails will go through but this is a known issue that we come across almost everyday where some emails for some reason will not go through until the issue has been corrected on the server side.

Please see the delivery log of one email confirming the issue on the exchange. As you will see we are correctly able to establish a connection to your server but its only when we issue the RCPT To command that we get an error:


INFO |0907-083406|Thread-1692601|queue.DeliveryThread|Preparing attempt From support@findaproperty.com to email@domain.com
INFO |0907-083406|Thread-1692601|queue.DeliveryThread|Found route for **ip address**
INFO |0907-083406|Thread-1692601|queue.DeliveryThread|Processing route based delivery
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|Attempt From support@findaproperty.com to email@domain.com using **ip address**
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|got > 220 mail.domain.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.3959 ready at Wed, 7 Sep 2011 08:34:06 +0100
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|snt > HELO mimecast service
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|got > 250 mail.domain.com Hello [91.220.42.11]
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|snt > MAIL FROM:<support@findaproperty.com>
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|got > 250 2.1.0 support@findaproperty.com....Sender OK
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|snt > RCPT TO:<email@domain.com>
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|got > 550 5.7.1 Unable to relay for email@domain.com
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|Code|23040|550 5.7.1 Unable to relay for email@domain.com
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|snt > QUIT
INFO |0907-083406|Thread-1692601|delivery.SmtpDelivery|got > 221 2.0.0 mail.domain.com Service closing transmission channel
INFO |0907-083406|Thread-1692601|queue.DeliveryThread|550 5.7.1 Unable to relay for email@domain.com


Does this help at all with diagnosing the issue on our server at all?
0
 
LVL 9

Expert Comment

by:davealford
ID: 36501345
Are you running any inbound filters on Exchange ie. DNS blocklists, SPF checks etc?
In the log file provided, the domain findaproperty.com has a SPF of "v=spf1 ip4:217.205.148.44 ip4:213.52.169.192/26 include:spf.messagelabs.com"
So, as your mail server is 'seeing' the mail as comming FROM 91.220.42.11 (mimecast), if SPFchecks are enforced, it will reject the message.....
0
 

Author Comment

by:jjFOX04
ID: 36501450
Hi,

No blocklists/filters are enable don our Exchange - we always configure mimecast to filter anything where necessary. Nothing is set in Mimecast to filter in this situation though... Would i be right in presuming if Mimecast was filtering/blocking anything, it would block all emails from that address, rather than random ones?
0
 
LVL 9

Expert Comment

by:davealford
ID: 36501523
It doen't appear to be mimecast. It is your Exchange that's issueing the 550 message. What do you see in your SMTP logs for the denied messages - you may need to enable logging on the SMTP service?
0
 

Author Comment

by:jjFOX04
ID: 36501591
Thankfully i switched SMTP logging on yesterday. There's been a 550 unable to relay again this morning - for which the SMTP logs have the following:

2011-09-08 08:38:05 91.220.42.11 mimecast service SMTPSVC1 MAIL-SERVER 192.168.1.* 0 HELO - +mimecast service 250 0 41 27 0 SMTP - - - -
2011-09-08 08:38:05 91.220.42.11 mimecast service SMTPSVC1 MAIL-SERVER 192.168.1.* 0 MAIL - +FROM:<support@findaproperty.com> 250 0 50 37 0 SMTP - - - -
2011-09-08 08:38:05 91.220.42.11 mimecast service SMTPSVC1 MAIL-SERVER 192.168.1.* 0 RCPT - +TO:<email@domain.com> 550 0 55 33 0 SMTP - - - -
2011-09-08 08:38:05 91.220.42.11 mimecast service SMTPSVC1 MAIL-SERVER 192.168.1.* 0 QUIT - mimecast service 240 16 63 4 0 SMTP - - - -

0
 

Author Comment

by:jjFOX04
ID: 36535594
Hi all,

does anyone have any idea's for this issue at all? It is still happening, and so far everything I have tried has had no effect at all.

Any help greatly appreciated,
Regards
Dave
0
 
LVL 9

Expert Comment

by:davealford
ID: 36541324
do you have any limits on the mailbox attachments, mailbox size etc?
are you 100% you have no filtering (blacklists spf etc) in place?
What's the diskspace like? - Exchange 2007 and 2010 check for diskspace and start bouncing mail if below threshold.
0
 

Author Comment

by:jjFOX04
ID: 36541348
Hi Dave,

We've got attachment limits at 30Mb on exchange, but the emails that are bouncing will never be more than 1Mb (they are plain-text emails requesting information mostly). Definitely no blacklists or filtering in place.

As for diskspace - we're running Exchange 2003 so not sure if this applies, but we're at 60Gb on the exchange database (in total - EDB and STM files combined) on a harddisk that has 125Gb used of 270Gb available.
0
 

Accepted Solution

by:
jjFOX04 earned 0 total points
ID: 37005717
Hi all,

In the end we deleted all Exchange relay IP addresses and then re-added the entire IP range rather than just one IP address and all seems to be working now

Regards,
Dave
0
 

Author Closing Comment

by:jjFOX04
ID: 37035245
explanation of what we did has resulted in it solving the problem
0

Featured Post

Announcing the Most Valuable Experts of 2016

MVEs are more concerned with the satisfaction of those they help than with the considerable points they can earn. They are the types of people you feel privileged to call colleagues. Join us in honoring this amazing group of Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Follow this checklist to learn more about the 15 things you should never include in an email signature from personal quotes, animated gifs and out-of-date marketing content.
Read this checklist to learn more about the 15 things you should never include in an email signature.
In this Micro Video tutorial you will learn the basics about Database Availability Groups and How to configure one using a live Exchange Server Environment. The video tutorial explains the basics of the Exchange server Database Availability grou…
how to add IIS SMTP to handle application/Scanner relays into office 365.

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question